Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
macrovision installshield vulnerabilities and exploits
(subscribe to this query)
9.3
CVSSv2
CVE-2007-5661
The Macrovision InstallShield InstallScript One-Click Install (OCI) ActiveX control 12.0 before SP2 does not validate the DLL files that are named as parameters to the control, which allows remote malicious users to download arbitrary library code onto a client machine.
Macrovision Installshield
9.3
CVSSv2
CVE-2007-5660
Unspecified vulnerability in the Update Service ActiveX control in isusweb.dll prior to 6.0.100.65101 in MacroVision FLEXnet Connect and InstallShield 2008 allows remote malicious users to execute arbitrary code via an unspecified "unsafe method," possibly involving a b...
Macrovision Update Service 3.0
Macrovision Flexnet Connect
Macrovision Installshield 2008
Macrovision Update Service 6.0.100 60146
Macrovision Update Service 5.0
Macrovision Update Service 5.1.100 47363
Macrovision Update Service 4.0
2 EDB exploits
2.1
CVSSv2
CVE-2007-6744
Flexera Macrovision InstallShield prior to 2008 sends a digital-signature password to an unintended application during certain signature operations involving .spc and .pvk files, which might allow local users to obtain sensitive information via unspecified vectors, related to an ...
Flexerasoftware Installshield 10.5
Flexerasoftware Installshield
Flexerasoftware Installshield 11.5
Flexerasoftware Installshield 11
9.3
CVSSv2
CVE-2007-0320
Multiple buffer overflows in (a) an ActiveX control (iftw.dll) and (b) Netscape plug-in (npiftw32.dll) for Macrovision (formerly InstallShield) InstallFromTheWeb allow remote malicious users to execute arbitrary code via crafted HTML documents.
Macrovision Installfromtheweb
9.3
CVSSv2
CVE-2007-6654
Buffer overflow in a certain ActiveX control in Macrovision InstallShield Update Service Web Agent 5.1.100.47363 allows remote malicious users to execute arbitrary code via a long string in the ProductCode argument (second argument) to the DownloadAndExecute method, a different v...
Macrovision Update Service 5.1.100 47363
1 EDB exploit
9.3
CVSSv2
CVE-2008-2470
The InstallShield Update Service Agent ActiveX control in isusweb.dll allows remote malicious users to cause a denial of service (memory corruption and browser crash) and possibly execute arbitrary code via a call to ExecuteRemote with a URL that results in a 404 error response.
Macrovision Flexnet Connect 6.0
9.3
CVSSv2
CVE-2007-0321
Buffer overflow in the Update Service Agent ActiveX Control in isusweb.dll for Macrovision FLEXnet Connect (formerly InstallShield Update Service) allows remote malicious users to execute arbitrary code via the Download method.
Macrovision Flexnet Connect
9.3
CVSSv2
CVE-2007-0328
The DWUpdateService ActiveX control in the agent (agent.exe) in Macrovision FLEXnet Connect 6.0 and Update Service 3.x to 5.x allows remote malicious users to execute arbitrary commands via (1) the Execute method, and obtain the exit status using (2) the GetExitCode method.
Macrovision Update Service 3.0
Macrovision Update Service 5.0
Macrovision Flexnet Connect 6.0
Macrovision Update Service 4.0
9.3
CVSSv2
CVE-2008-1093
Acresso InstallShield Update Agent does not properly verify the authenticity of Rule Scripts obtained from GetRules.asp web pages on FLEXnet Connect servers, which allows remote man-in-the-middle malicious users to execute arbitrary VBScript code via Trojan horse Rules.
Acresso Flexnet Connect
Acresso Intallshield Update Agent
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
buffer overflow
type confusion
server-side request forgery
CVE-2024-38440
CVE-2024-27801
CVE-2024-5868
CVE-2024-0582
CVE-2024-37643
CVE-2024-3105
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started